> I found that Quotas work so the policy is verified. But Access Control is > ignored. > > -- > > I have installed V2 and verified my policy is matched: > > [2009/03/17-16:10:45 - 28093] [POLICIES] INFO: [ID:1/Name:Default]: Source > matching result: matched=1 > [2009/03/17-16:10:45 - 28093] [POLICIES] INFO: [ID:2/Name:Default Outbound]: > Source matching result: matched=1 > [2009/03/17-16:10:45 - 28093] [POLICIES] INFO: [ID:3/Name:Default Inbound]: > Source matching result: matched=0 > [2009/03/17-16:10:45 - 28093] [POLICIES] INFO: [ID:4/Name:Default Internal]: > Source matching result: matched=0 > [2009/03/17-16:10:45 - 28093] [POLICIES] INFO: [ID:5/Name:kosmosisland dot > com]: Source matching result: matched=1 > [2009/03/17-16:10:45 - 28093] [POLICIES] DEBUG: [ID:5/Name:kosmosisland dot > com]=>(group:domain_kosmosisland_com): Destination group result: matched=1 > > However, the access control associated with this policy is ignored: > > # echo "select * from access_control" | mysql policyd -t > +----+----------+-------------+---------+------------------------------+---------+----------+ > | ID | PolicyID | Name | Verdict | Data | > Comment | Disabled | > +----+----------+-------------+---------+------------------------------+---------+----------+ > | 1 | 5 | Kosmos Test | REJECT | Relay for Kosmos not > allowed | | 0 | > +----+----------+-------------+---------+------------------------------+---------+----------+ > > I am at loss as to how to troubleshoot this. The email is going through but I > expect it to be rejected. Quotas fail the same way. > > BTW, this is for an outbound relay running on Debian Lenny. > > My main.cf: > > 1 queue_directory = /var/spool/postfix-out > 2 data_directory = /var/lib/postfix-out > 3 inet_interfaces = 65.183.xxx.9 > 4 > 5 mydestination = > 6 local_transport = error:5.1.1 Mailbox unavailable > 7 alias_database = > 8 alias_maps = > 9 local_recipient_maps = > 10 > 11 smtpd_banner = Outbound Relay $myhostname ESMTP $mail_name (Debian/GNU) > 12 biff = no > 13 > 14 append_dot_mydomain = no > 15 > 16 myorigin = /etc/mailname > 17 mynetworks = 127.0.0.0/8, 65.183.xxx.xxx/24 > 18 mailbox_size_limit = 0 > 19 > 20 > 21 smtpd_recipient_restrictions = > 22 check_policy_service inet:127.0.0.1:10031, > 23 permit_mynetworks, > 24 reject > 25 > 26 smtpd_end_of_data_restrictions = > 27 check_policy_service inet:127.0.0.1:10031, > 28 permit > 29 > 30 smtpd_sender_restrictions = > 31 permit_mynetworks, > 32 reject > 33 > Paste full logs please, including your policyd config file.
-N _______________________________________________ Users mailing list [email protected] http://lists.policyd.org/mailman/listinfo/users
